'

Medusa group steps up ransomware activities

Medusa group steps up ransomware activities

A fast rising ransomware outfit is escalating its activities and has launched a new blog offering victims a variety of payoff options, according to a report released Thursday by Palo Alto Networks’ Unit 42. The new Medusa Blog is used by the group to post stolen data with the threat of exposing the data if … Read more

Researchers demo new CI/CD attack techniques in PyTorch supply-chain

Researchers demo new CI/CD attack techniques in PyTorch supply-chain

A pair of security researchers managed to infiltrate the development infrastructure for PyTorch by using new techniques that exploit insecure configurations in GitHub Actions workflows. Their proof-of-concept attack was responsibly disclosed to PyTorch lead developer Meta AI, but other software development organizations that use GitHub Actions have likely made the same deployment mistakes, potentially exposing … Read more

GitLab Patches Critical Account Takeover Flaw

GitLab Patches Critical Account Takeover Flaw

GitLab has fixed a critical-severity flaw in several versions of its platform that, if successfully exploited, could enable attackers to take over accounts without user interaction. The flaw (CVE-2023-7028) stems from the fact that user account password reset emails can be delivered to unverified email addresses. GitLab Community Edition (CE) and Enterprise Edition (EE) versions … Read more

Categories duo

APT Group Targets Ivanti Flaws

APT Group Targets Ivanti Flaws

Researchers have discovered evidence of an unidentified APT group exploiting the recently disclosed Ivanti vulnerabilities to install malware, webshells, and other malicious tools, and say the activity began well before the bugs were publicly known. The two vulnerabilities (CVE-2023-46805 and CVE-2024-21887) affect all supported versions of the company’s Connect Secure and Pulse Secure gateway appliances … Read more

Categories duo

CISA adds patched MS SharePoint server vulnerability to KEV catalog

CISA adds patched MS SharePoint server vulnerability to KEV catalog

A patched privilege escalation vulnerability impacting Microsoft SharePoint servers has been added to the known exploited vulnerabilities (KEV) catalog of the US Cybersecurity and Infrastructure Security Agency (CISA). Citing evidence of active exploitation, CISA has tagged the critical severity bug Microsoft previously released fixes for as part of its June 2023 Patch Tuesday updates. Tracked … Read more

Closed Door Security Becomes Scotland’s First Chartered Cyber Security Business

Closed Door Security Becomes Scotland’s First Chartered Cyber Security Business

Closed Door Security, a leading provider of attack-driven cyber security assessments, today announced its CEO and founder, William Wright, has just been awarded with a Chartership in Cyber Security, turning the company into Scotland’s most highly accredited cyber security firm. The accreditation was awarded by the Cyber Scheme, which recently became one of the first … Read more